The 2024 Verizon PSR includes a first-of-its kind analysis conducted by Source Defense of the risk posed to cardholder data in the eCommerce channel. Analyzing 7,500 of the world’s largest eCommerce sites, the research highlights the risk of eSkimming attacks to every single organization analyzed, leading to the conclusion that it is a risk posed to virtually every organization conducting eCommerce around the globe. Broken down by region and sub-industry, the research exposes the use of third-party website partners; highlights risky actions taken by these partners; sheds light on a fundamental weakness in website security and supports the decision by the PCI Council to include eSkimming security controls in the revised, PCI DSS v4.0 Standard.